EVMPatch: Timely and Automated Patching of Ethereum Smart Contracts

Rodler, Michael; Li, Wenting; Karame, Ghassan O.; Davi, Lucas

doi:10.48550/arxiv.2010.00341

Cited by 1 publication

(1 citation statement)

References 14 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…This pattern provides flexibility, re-routing transactions to patched contracts at runtime. Automated patching can speed up this timecritical operation, reducing the opportunity window for attacks further still [28].…”

Section: Related Workmentioning

confidence: 99%

EtherClue: Digital investigation of attacks on Ethereum smart contracts

Aquilina,

Casino,

Vella

et al. 2021

Preprint

View full text Add to dashboard Cite

Programming errors in Ethereum smart contracts can result in catastrophic financial losses from stolen cryptocurrency. While vulnerability detectors can prevent vulnerable contracts from being deployed, this does not mean that such contracts will not be deployed. Once a vulnerable contract is instantiated on the blockchain and becomes the target of attacks, the identification of exploit transactions becomes indispensable in assessing whether it has been actually exploited and identifying which malicious or subverted accounts were involved.In this work, we study the problem of post-factum investigation of Ethereum attacks using Indicators of Compromise (IoCs) specially crafted for use in the blockchain. IoC definitions need to capture the side-effects of successful exploitation in the context of the Ethereum blockchain. Therefore, we define a model for smart contract execution, comprising multiple abstraction levels that mirror the multiple views of code execution on a blockchain. Subsequently, we compare IoCs defined across the different levels in terms of their effectiveness and practicality through EtherClue, a prototype tool for investigating Ethereum security incidents. Our results illustrate that coarse-grained IoCs defined over blocks of transactions can detect exploit transactions with less computation; however, they are contract-specific and suffer from false negatives. On the other hand, fine-grained IoCs defined over virtual machine instructions can avoid these pitfalls at the expense of increased computation which are nevertheless applicable for practical use.

show abstract

Section: Related Workmentioning

confidence: 99%